9 matches found
CVE-2021-3947 affecting package qemu for versions less than 6.2.0-2
CVE-2021-3947 affecting package qemu for versions less than 6.2.0-2. An upgraded version of the package is available that resolves this issue...
Exploit for Use After Free in Qemu
CVE-2021-3929-3947 VM escape PoC for CVE-2021-3929https://...
CVE-2021-3947 affecting package qemu-kvm 4.2.0-48
CVE-2021-3947 affecting package qemu-kvm 4.2.0-48. A patched version of the package is available...
Security fix for the ALT Linux 10 package qemu version 6.1.1-alt1
6.1.1-alt1 built March 1, 2022 Alexey Shabalin in task 295902 --- Feb. 24, 2022 Alexey Shabalin - 6.1.1 - Fixes for the following security vulnerabilities: + CVE-2021-3713 uas: add stream number sanity checks + CVE-2021-3947 hw/nvme: fix buffer overrun in nvmechangednslist + CVE-2021-20196...
CVE-2021-3947
A stack-buffer-overflow was found in QEMU in the NVME component. The flaw lies in nvmechangednslist where a malicious guest controlling certain input can read out of bounds memory. A malicious user could use this flaw leading to disclosure of sensitive information...
UBUNTU-CVE-2021-3947
A stack-buffer-overflow was found in QEMU in the NVME component. The flaw lies in nvmechangednslist where a malicious guest controlling certain input can read out of bounds memory. A malicious user could use this flaw leading to disclosure of sensitive information...
CVE-2021-3947
The CVE-2021-3947 entry corresponds to a stack-buffer-overflow in QEMU’s NVME implementation, specifically nvme_changed_nslist(), where crafted input from a malicious guest can trigger out-of-bounds reads and disclose sensitive information. Multiple connected sources confirm the issue as a memory...
qemu security update
15:4.2.1-15.el7 - Document CVE-2021-4158 and CVE-2021-3947 as fixed Mark Kanda Orabug: 33719302 Orabug: 33754145 CVE-2021-3947 CVE-2021-4158 - hw/block/fdc: Kludge missing floppy drive to fix CVE-2021-20196 Philippe Mathieu-Daude Orabug: 32439466 CVE-2021-20196 - hw/block/fdc: Extract...
CVE-2021-3947
A stack-buffer-overflow was found in QEMU in the NVME component. The flaw lies in nvmechangednslist where a malicious guest controlling certain input can read out of bounds memory. A malicious user could use this flaw leading to disclosure of sensitive information...